Question 1: 


2 . 


Answer the following questions by dearly circling the most opDropoofo answer ( 1 point each ) 

A loss of | S the unauthorized disclosure of information. 

3. integrity 

b. authenticity 

c. reliability 
(^confidentiality 

What is the inverse of confidentiality, integrity, and availability? 

a. misuse, exposure, destruction 

authorization, non-repudiation, integrity 
(£> disclosure, alteration, destruction 

d. confidentiality, integrity, availability 

3 ' 55ST* !ea,ri ' V °' ' he s V stem s and infornrafion fransfers of 

a. Security attack 
(b.i Security service 

c. Security encryption 

d. Security mechanism 


an 


4. 


What type of crypto-analytical attack 
with? 


where an adversary has least 


amount of information to work 


a. Known plain text 
(b^ Cipher text only 

c. Plain text only 

d. Chosen cipher text 



iTeSIrwS is mS ” COnSidered b,eakable «“•* « *""> be considered 



3DES with codebooks 
RSA with Elliptic-curve 


AES with CBC 
Onetime pad 
iOS SSL Enclave 


6. To which stage in AES, if removed, there is no security 

a. Byte Substitution 

b. Shift Row 

c. Mix Column 
(sL' Add Round key 


2 


7. The practice of embedding a message in a document, image, video or sound recording so Hint its 
very existence is hidden is called 

a. anonymity. 

^ steganography. / 

c. non-repudiation. 

d. masquerading 

8. What is the main step in a AES that is responsible for confusion 

(ay The Byte Substitution 

b. The Shift Key 

c. The Mix Column 

d. The Add Round key 

e. All of the above 

9. Alice encrypted a message using a cryptographic algorithm three times using three keys of size 16, 
32, and 48 bits for encryption. An attacker launched a brute force attack on the keys. On average, 

how many key attempts expected to know the keys < 

^ I o 


10. Monoalphabetics are easy to break because they reflect the frequency data of the original alphabet. 
A countermeasure is to 




(j3, provide multiple substitutes. 

b. permute the cipher to be in reverse order. 

c. replace the characters with symbols. 

d. Use Caesar cipher with large key. 





Question 2: 


l. 



Define each of the following: 

L unconditional security 

' c * ^ j/ < L- A £ fr-A cufbtf ^ 

■ Authentication 

- (^(A /(X^^ 'ki'&h Co ^IA n 

~ Wk*£ . , . , 


b/ cctb^kie 

a M r\e?*l ed 


o/ rU. \a<£/ 


^ » 5* u/ 


rr 




[ 2 points ] 

it &JU 

W /#> r . 




/M* /^< 


<^<ff Ufc/ 




2 . 



There are 33 letters in the Russian alphabet. 11 vowels, 20 consonants, and 2 pronunciation signs. 

L. i . . [2 points ] 

a. How large is the key space using monoalphabet’ 

<r 

b. Monoalphabetic substitution cipher is not secure. Why? 

facets c / cuxy t c/wetc /■ * <0 j At , " ^uKr 5 / M W/rV 5 ' ' . 


3. Construct a table for the Playfair Cipher with the keyword "SWAZILAND"? 
Then encrypt the phrase: ^CRUiVI BLES1' 


[ 3 points ] 
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4. 



What is the main weakness of Caesar cipher? 


Veu ?,zc 


O vM 


1 





Las i 




[ 1 points ] 

<U . 


5. 


1 


What is the name of the two types of operations used for 

JllTp 5 c. f u.t-\c- ^ 

f o fV 


transforming plaintext to ciphertext? 

[ 1 points ] 


6. Playfair and polyalphabet algorithms both use a keyword. When can polyalphabet (Vigenere) be 
considered of the same security level as playfair i.e. applying same attack? [ l points ] 

ff isc Ufc key UsO'd 

& f y a(? l^bet ,'s (of eaX^x 

of Mfc/> M ft #Jr1 *ck} , 

eiA'v-y (ah) in plain fc>*/ ,' 5 e*.tf,fhc{ 



cu^U 

ei . 


by (- ^ ) i c y 


Question 3: 

1. Given the following symbols used in DES { L 0 , Ro, F, XOR, Li, Ri, K x } 



i. 



Write the encryption equations to produce Li and Ri for one round of DES from Lo and R 0 

L, i P?o 

ft, s Lo xofl F( ft, , k) 

Write the decryption equations to produce L 0 and R 0 from and Rxcalculated in (a) and prove 
the equality. 

Lo s L\ * R a 

* R, *68 f ( ) 

s U * <3/3 f XoR ^ * op ' ^ c ^ 




2. Below is one round encryption of an algorithm called SES which resembles DES algorithm. 

[ 5 points ] 

a. List from SES three similar actions to DES 

i W. RH ^ 

S' - key ^ 

b. Where does SES perform substitution and permutation. 

_ 5u. bf Z' / Cr\ \ $ ~ b>o?^ I * i 

— Lo i LA/ 

I 

c. Explain SES decryption 

*" JCO \ , 

- rcvtrCt F 


L 1 

AH 
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R: 32bit 


L: 32bit 


K 



SES performs 16 rounds, which algorithm is better SES or 
DES? why 

D&*? betu^s In f iK £v/'t4~y 1 




7 H'gJ' 

hcJ 




f 1*,b$ Op^t oJ'fOy'i 
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S£$ Dr IS Je-^e ol ' ,e 


3. Arrange the following ciphers according to the size of their key space (smallest to largest): 

<•*««/ ^ II points) 

Qowble Q L< > 

6 > <, , 

CW ^ ‘ Js* ^ 


Double DES 
One time pad 
Caesar 
AES 
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Question 4: 


1. List one advantage and one limitation of the below mode of operation 


[ 2 points ] 



<a) Encryption 


elfeJ ^ vo^r ' K 



■f 

-E o** e ci\tw\Cj e - . 

, IV, l\J fc— w 






2. Encrypting the same information with the same key will result in the same cipher. Propose a 

solution to the problem that does not involve changing the key. Explain your solution. 

^ 7^' - v 1 ' L .. u<,\yy // u. .v [ 1 points ] 


Problem ('ova ^ w f»Vl _ dtnu^ic 

o peScJ-'biA oY <*- <b<s> opevcc 


*/ bJt H* problem is blv uje ppeW.«~s. 

/ « i 




3. What is the reason of including the following stages in AES 
>• Shift Row ^ 

io cedu^e pcu-Ste 

ii. Byte Substituion 

OlC^I^C Co*\ |6A 


[ 2 points ] 


/■ <2 


4. An algorithm designer modified AES Encryption algorithm by swapping the byte substitution and 

shift row stages, i.e. first perform shift row then byte substitution and claimed that his algorithm is 
better. Is it? Whv? I * points ] 

'\ (J 0f c k^«?f M of Uadr Jo ie*k . 

5. Which component in AES does not have resemblance in DES. [ 1 point ] 

\ / Mi i< <rdtA.,*\A $ , t , i 

' c<w».’9<r t trc l ^ 

6. Why the number of rounds is smaller in AES than DES although the block size of AES is larger than 

D ) S flE*) Ccl.-a ' I tShd f-i’ws' yovv^I^ by Orlu M 

<<*j d't-h h ^ neee ^ VolK ^ ct.cl\ Cis€ 

y 

1. Explain what is brute force attack and why it's not the preferred method of attack [ 2 points ] 

[yj { f o/Ce f‘o-„pct:>r> 1° r : h 'i 

ckvycA EoJp-e of ■ 


